Start integrating the onboarding flow with backend 3

2025-09-04 23:19:53 +02:00
parent 9eedc2e5f2
commit 0faaa25e58
26 changed files with 314 additions and 767 deletions
--- a/services/inventory/app/api/food_safety.py
+++ b/services/inventory/app/api/food_safety.py
@@ -12,7 +12,7 @@ from fastapi import APIRouter, Depends, HTTPException, Query, Path, status
 from sqlalchemy.ext.asyncio import AsyncSession
 import structlog

-from shared.auth.decorators import get_current_user_dep, get_current_tenant_id_dep
+from shared.auth.decorators import get_current_user_dep
 from app.core.database import get_db
 from app.services.food_safety_service import FoodSafetyService
 from app.schemas.food_safety import (
@@ -49,19 +49,12 @@ async def get_food_safety_service() -> FoodSafetyService:
 async def create_compliance_record(
    compliance_data: FoodSafetyComplianceCreate,
    tenant_id: UUID = Path(...),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    food_safety_service: FoodSafetyService = Depends(get_food_safety_service),
    db: AsyncSession = Depends(get_db)
 ):
    """Create a new food safety compliance record"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Ensure tenant_id matches
        compliance_data.tenant_id = tenant_id
        
@@ -99,18 +92,11 @@ async def get_compliance_records(
    status_filter: Optional[str] = Query(None, description="Filter by compliance status"),
    skip: int = Query(0, ge=0, description="Number of records to skip"),
    limit: int = Query(100, ge=1, le=1000, description="Number of records to return"),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    db: AsyncSession = Depends(get_db)
 ):
    """Get compliance records with filtering"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Build query filters
        filters = {}
        if ingredient_id:
@@ -156,19 +142,12 @@ async def update_compliance_record(
    compliance_data: FoodSafetyComplianceUpdate,
    tenant_id: UUID = Path(...),
    compliance_id: UUID = Path(...),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    food_safety_service: FoodSafetyService = Depends(get_food_safety_service),
    db: AsyncSession = Depends(get_db)
 ):
    """Update an existing compliance record"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        compliance = await food_safety_service.update_compliance_record(
            db,
            compliance_id,
@@ -206,19 +185,12 @@ async def update_compliance_record(
 async def log_temperature(
    temp_data: TemperatureLogCreate,
    tenant_id: UUID = Path(...),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    food_safety_service: FoodSafetyService = Depends(get_food_safety_service),
    db: AsyncSession = Depends(get_db)
 ):
    """Log a temperature reading"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Ensure tenant_id matches
        temp_data.tenant_id = tenant_id
        
@@ -246,19 +218,12 @@ async def log_temperature(
 async def bulk_log_temperatures(
    bulk_data: BulkTemperatureLogCreate,
    tenant_id: UUID = Path(...),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    food_safety_service: FoodSafetyService = Depends(get_food_safety_service),
    db: AsyncSession = Depends(get_db)
 ):
    """Bulk log temperature readings"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Ensure tenant_id matches for all readings
        for reading in bulk_data.readings:
            reading.tenant_id = tenant_id
@@ -292,18 +257,11 @@ async def get_temperature_logs(
    violations_only: bool = Query(False, description="Show only temperature violations"),
    skip: int = Query(0, ge=0, description="Number of records to skip"),
    limit: int = Query(100, ge=1, le=1000, description="Number of records to return"),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    db: AsyncSession = Depends(get_db)
 ):
    """Get temperature logs with filtering"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Build query
        where_conditions = ["tenant_id = :tenant_id"]
        params = {"tenant_id": tenant_id}
@@ -359,19 +317,12 @@ async def get_temperature_logs(
 async def create_food_safety_alert(
    alert_data: FoodSafetyAlertCreate,
    tenant_id: UUID = Path(...),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    food_safety_service: FoodSafetyService = Depends(get_food_safety_service),
    db: AsyncSession = Depends(get_db)
 ):
    """Create a food safety alert"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Ensure tenant_id matches
        alert_data.tenant_id = tenant_id
        
@@ -404,18 +355,11 @@ async def get_food_safety_alerts(
    unresolved_only: bool = Query(True, description="Show only unresolved alerts"),
    skip: int = Query(0, ge=0, description="Number of alerts to skip"),
    limit: int = Query(100, ge=1, le=1000, description="Number of alerts to return"),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    db: AsyncSession = Depends(get_db)
 ):
    """Get food safety alerts with filtering"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Build query filters
        where_conditions = ["tenant_id = :tenant_id"]
        params = {"tenant_id": tenant_id}
@@ -465,18 +409,11 @@ async def update_food_safety_alert(
    alert_data: FoodSafetyAlertUpdate,
    tenant_id: UUID = Path(...),
    alert_id: UUID = Path(...),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    db: AsyncSession = Depends(get_db)
 ):
    """Update a food safety alert"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Get existing alert
        alert_query = "SELECT * FROM food_safety_alerts WHERE id = :alert_id AND tenant_id = :tenant_id"
        result = await db.execute(alert_query, {"alert_id": alert_id, "tenant_id": tenant_id})
@@ -538,18 +475,11 @@ async def acknowledge_alert(
    tenant_id: UUID = Path(...),
    alert_id: UUID = Path(...),
    notes: Optional[str] = Query(None, description="Acknowledgment notes"),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    db: AsyncSession = Depends(get_db)
 ):
    """Acknowledge a food safety alert"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Update alert to acknowledged status
        update_query = """
            UPDATE food_safety_alerts
@@ -600,18 +530,11 @@ async def acknowledge_alert(
 async def get_food_safety_metrics(
    tenant_id: UUID = Path(...),
    days_back: int = Query(30, ge=1, le=365, description="Number of days to analyze"),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep),
    db: AsyncSession = Depends(get_db)
 ):
    """Get food safety performance metrics"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        # Calculate compliance rate
        compliance_query = """
            SELECT 
@@ -686,17 +609,10 @@ async def get_food_safety_metrics(
@router.get("/tenants/{tenant_id}/status")
 async def get_food_safety_status(
    tenant_id: UUID = Path(...),
-    current_tenant: str = Depends(get_current_tenant_id_dep),
    current_user: dict = Depends(get_current_user_dep)
 ):
    """Get food safety service status"""
    try:
-        if str(tenant_id) != current_tenant:
-            raise HTTPException(
-                status_code=status.HTTP_403_FORBIDDEN,
-                detail="Access denied to tenant data"
-            )
-        
        return {
            "service": "food-safety",
            "status": "healthy",